Andre UserAU
Open to opportunities

Andre User

@andreuser2

Security compliance and IT audit professional with extensive experience.

United States
Message

What I'm looking for

I am seeking a role that values compliance and security, offers growth opportunities, and fosters collaboration.

I am a dedicated Security Compliance and IT Audit Professional with a proven track record of leading successful audits and enhancing compliance programs. With experience in managing SOC 2, HIPAA, and NIST 800-53 audits, I have partnered with cross-functional teams to ensure organizations meet regulatory standards while leveraging automation tools like Vanta and Drata.

Throughout my career, I have built and optimized GRC workspaces, designed workflows for risk assessments, and improved vendor onboarding timelines. My role as a Senior Consultant Auditor at A-LIGN has allowed me to mentor junior auditors and contribute to the development of audit technology strategies, ensuring high-quality service delivery and client satisfaction.

With a Master’s degree in Cybersecurity and certifications like Security+, I am passionate about driving compliance initiatives and fostering a culture of security awareness. I thrive in collaborative environments where I can advise stakeholders on best practices and regulatory changes, ultimately enhancing the organization's risk posture.

Experience

Work history, roles, and key accomplishments

A-
Current

Senior Consultant Auditor

A-LIGN

Jul 2022 - Present (3 years)

Led and completed SOC 1, SOC 2, HIPAA, and NIST 800-53 audits for a diverse client base, ensuring successful certification and ongoing compliance. Utilized platforms such as Vanta, Drata, and custom GRC tools to automate compliance evidence collection and streamline client audits.

SOCHIPAA)NIST 800 53VantaDrataGRC ToolingRisk Analysis
CL

Security Compliance Specialist, Manager

Crowe, LLP

Jan 2019 - Present (6 years 6 months)

Oversaw Crowe’s SOC 2 compliance program, maintaining control alignment with Trust Services Criteria and supporting successful Type I and II audits. Designed and maintained internal control frameworks to ensure audit readiness for SOC 2, HIPAA, and internal cybersecurity policies.

SOC IIHIPAA)Internal ControlsVendor Risk ManagementISQM1
CL

Security Client Response Analyst, Manager

Crowe, LLP

Jan 2019 - Present (6 years 6 months)

Responded to client security questionnaires, coordinated audit documentation, and supported information security program initiatives across business units. Conducted vendor risk assessments, reviewed access requests, and contributed to incident investigation processes to maintain firmwide compliance.

Security QuestionnairesVendor AssessmentAccess ManagementInformation Security
PS

IT Support Lead

Preferred Risk Insurances Services

Jun 2018 - Present (7 years 1 month)

Delivered Tier 1 and Tier 2 support to over 100 end users across departments, ensuring resolution of incidents involving hardware, software, printers, and network connectivity. Administered Active Directory for user lifecycle management, including account creation, deactivation, group assignments, and access provisioning with strict adherence to security policies.

Tier 1 SupportActive DirectoryVPNMFA
PS

IT Security and Support Intern

Perspectives Charter School

Jun 2017 - Present (8 years 1 month)

Provided on-site and remote technical support to faculty, staff, and students, resolving issues related to Chromebooks, Windows devices, classroom technology, and educational platforms. Assisted with user account management in Active Directory and Google Workspace for Education, supporting access provisioning, password resets, and permission reviews.

Technical SupportActive DirectoryGoogle WorkspaceAccount Management

Education

Degrees, certifications, and relevant coursework

DePaul University logoDU

DePaul University

Master of Science, Cybersecurity: Governance, Risk, & Compliance

Activities and societies: Security Daemons – Organization at DePaul University catered to students interested in Computer, Information, and Network Security

Focused on the principles and practices of cybersecurity, with a specialization in governance, risk, and compliance. Gained expertise in managing security frameworks and regulatory requirements.

Illinois State University logoIU

Illinois State University

Bachelor of Science, Information Security & Assurance

Activities and societies: Alpha Phi Alpha Fraternity Inc. – Intercollegiate fraternity committed to community service and campus outreach.

Studied the fundamentals of information security and assurance, covering various aspects of protecting information systems. Developed a strong foundation in security principles and practices.

Tech stack

Software and tools used professionally

OneTrust logo

OneTrust

Gmail logo

Gmail

Windows logo

Windows

Google Workspace logo

Google Workspace

Vanta logo

Vanta

ServiceNow logo

ServiceNow

Availability

Open to opportunities

Location

United States

Authorized to work in

United States

Job categories

Security Compliance AnalystIT Audit SpecialistCompliance ManagerRisk Management ConsultantCybersecurity AnalystSecurity Compliance ManagerSecurity Compliance OfficerCompliance SpecialistCompliance ConsultantCompliance AnalystRegulatory Compliance Specialist

Skills

VantaDrataOneTrustAzure ADActive DirectoryVPNnetwork settingsImagingTechnical TroubleshootingSOC IIHIPAA)NIST 800 53ISO 27001Risk AssessmentControls TestingISQM1 ComplianceWindowsServiceNowGmailGoogle Workspace

Interested in hiring Andre?

You can contact Andre and 90k+ other talented remote workers on Himalayas.

Message Andre

People also viewed

View all talent

Find your dream job

Sign up now and join over 100,000 remote workers who receive personalized job alerts, curated job matches, and more for free!

Sign up
Himalayas profile for an example user named Frankie Sullivan
Andre User - Senior Consultant Auditor - A-LIGN | Himalayas